[PHP-DEV] Bug #13247: Move_uploaded_file set wrong user and wrong group From: linux <email protected>
Date: 09/11/01

From: linux <email protected>
Operating system: Cobalt OS
PHP version: 4.0.4pl1
PHP Bug Type: Unknown/Other Function
Bug description: Move_uploaded_file set wrong user and wrong group

Here is my configure line :

'./configure' '--with-mysql' '--with-gd' '--with-ttf'
'--enable-bcmath' '--enable-calendar'
'--enable-memory-limit' '--enable-safe-mode' '--with-imap'
'--enable-ftp' '--enable-sockets' '--with-apxs'

The script that is used is as simple as :
<?
 <email protected>($file,
"/path/to/my/directory/filename");
?>

My Apache webserver runs as user and group httpd.
Now the really annoying thing is that whenever my customer
or myself upload a file, the uploaded file is correctly
moved but the ownership is set to httpd.root ( user httpd
and group root ) Now this is a real big problem for my (
even without considering the security hole it represents )
because my customers cannot manage to erase these files
anymore afterwards via FTP, because their uid will not let
them touch these files. 

-- 
Edit bug report at: http://bugs.php.net/?id=13247&edit=1

-- 
PHP Development Mailing List <http://www.php.net/>
To unsubscribe, e-mail: php-dev-unsubscribe <email protected>
For additional commands, e-mail: php-dev-help <email protected>
To contact the list administrators, e-mail: php-list-admin <email protected>